How to setup second VPN in a LAN

	Home \| Net Issues \| Net How To \| Wireless \| Case Studies \| Articles \| Forums \| Services \| Donations \| Careers \| About Us \| Contact Us\|

How to setup second VPN in a LAN

Q: We have one PIX as firewall and VPN server. Since more and more people use the VPN, we just bought another ASA5510 and would like to setup it as dedicated VPN server. I have setup it as VPN and I can establish the VPN. However, I can't ping any remote computers because all computer default gateway point to the PIX. If I modify the inside computer routing table, the VPN client can access the computer. I hate to do that on each inside server. Can I add a route command line in the PIX to route all VPN traffic back to the VPN client? If yes which the command line? Or another other suggestions?

A: You should not use the PIX to route traffic for the 2nd VPN. That may bring some issues. What you may want to do is adding a routing layer 3, such as a Cisco router as default gateway for the LAN and VPN.

Alternatively, you may convert all configuration from PIX to ASA as firewall and VPN server.

Post your questions, comments, feedbacks and suggestions

Contact a consultant